Service Request Ticket - # 76150

Service Request Information

CONTACT Name Ellis, Michael   View open tasks   View tasks from last 30 days   Schedule Change Contact Date Jul 29, 2020 10:19 AM
Department University Computing Solutions Phone 88629
Location Email ellism@wou.edu Request for more information Send 'Keeping in touch' email Send 'I'm thinking of you' email
SR INFO Type WOU #
Priority Equipment Type
Status Flagged
Description
Computer Edit WOU # 20190066[Edit Inv] (opens in a new window) Bldg/Room NS 115
Service Tag 1CB64Y2 Description Dell OptiPlex 7060 SFF desktop, i5-8500 3Ghz 6core
Serial No. 1CB64Y2 Location NS115 GEN Science Lab Station #

CPU intel i5-8500(6-Core/Thread,9MB Cache, up to 4GHz)


OS Windows 10 Enterprise 64bit Software MS office Pro Plus 201* from XXXX2019009325;

Wired NIC E4:54:E8:5A:74:27

TECHS Submitted by Megan Thibeault Contact thibeaultm@wou.edu 88925
Primary Technician Contact ppuett16@wou.edu 88925

Tracking

Entered by Date Memo
Peter Puettmann
Email

Public
Entered by Date Memo
Peter Puettmann Jul 29, 2020 04:50 PM 
Status changed from (1) Pending to (5) Completed
 Add Attachment
Peter Puettmann Jul 29, 2020 04:50 PM 
done
Add Attachment
Peter Puettmann Jul 29, 2020 01:35 PM 
Task reassigned to Peter Puettmann.
 Add Attachment
Megan Thibeault Jul 29, 2020 10:19 AM 
****This is an email****
What happened: We could not clean up a threat.

Where it happened: W20190066

Path: \\.\GLOBALROOT\Device\HarddiskVolumeShadowCopy5\swapfile.sys

What was detected: Mal/FakeAV-CN

User associated with device: MASH\ppuett16

How severe it is: High

What Sophos has done so far: We attempted to clean up (unless the threat is on a Linux computer).

What you need to do: In the Sophos Central Admin console, go to the Alerts page and find the threat alert. Click on the threat name to see details and cleanup advice on the Sophos website. Then go to the affected computer and clean up the threat manually.
 Add Attachment